I am looking at modifying my VPN configuration and would like a little feedback.
Above is an diagram of my network. I have a ASA5505 on the left and a ASA5510 on the right. The site to site vpn between green networks is up and running well. I have a server in the DMZ that remote clients access.
I have developed a need to connect the 10.44.0.0 /16 network to the 192.168.23.10 address.
Of course, I know that I will have to add that to the vpn configurations and built nat exception rules. I'll have to do it in a way that doesn't keep the remote clients from connecting, but if I am specific with the NAT exception, that shouldn't be an issue.
Are there any other issues that I am missing? Are there any caveats that would require the VPN to have all local subnets on the same interface?
Yes, MSSPs can use Threat Response. In fact, there are more than 100 MSSPs actively using Threat Response in their investigations. Threat Response partially supports multi-tenancy, in that you can configure as many copies of a module as you need, one per...
With our browser plugins for Chrome and Firefox, you may immediately integrate with any web-based third-party products or intelligence web-based sources. Learn how to configure the plugins in this short video.
Besides, you may leverage Threat Response’s ...
Threat Response integrates with Threat Grid as a reference module. It allows investigators to pivot and get information for IP addresses, domains, URLs and file hashes from the Threat Grid repository. Conversely, Threat Grid leverages the Investigation a...
Threat Response integrates with SMA (Security Management Appliance) as an enrichment and enforcement module. The SMA module allows investigators to take actions such as searching email records for sender email and IP, email subject and message header, am...
With this integration, investigators can see intrusion events from Firepower devices correlated with enrichment from other Cisco Security products, adding greater context and helping the SOC investigate incidents with broader internal visibility.